Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/1CF5821009E311EAA865876AF8AEA228.roa
File: 1CF5821009E311EAA865876AF8AEA228.roa (raw, json)
Hash identifier: xf60mUM7UQFJaPoR6UW/PdwmYvMrMDlRwr1ITs1hSc8=
Subject key identifier: 95:EC:A8:1B:3A:08:42:52:FA:0B:E6:6C:B3:19:26:89:C8:63:92:25
Certificate issuer: /CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Certificate serial: 6A
Authority key identifier: 23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
Authority info access: rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/1CF5821009E311EAA865876AF8AEA228.roa
Signing time: Mon 18 Nov 2019 09:09:27 +0000
ROA not before: Mon 18 Nov 2019 09:09:18 +0000
ROA not after: Sat 17 Nov 2029 09:09:18 +0000
asID: 327687
IP address blocks: 137.63.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.mft
rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 26 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106 (0x6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Validity
Not Before: Nov 18 09:09:18 2019 GMT
Not After : Nov 17 09:09:18 2029 GMT
Subject: CN=5dd25fc7-bdc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:73:49:db:d6:e4:e5:20:d8:ff:94:8c:2f:86:
07:0b:20:59:b6:77:8e:16:5a:24:17:43:b9:57:7a:
63:4f:15:c6:4b:3a:13:76:10:9a:8d:06:3f:0a:ea:
a9:dc:49:ce:a7:f4:88:0c:35:59:fe:43:95:0d:86:
a2:7d:fc:98:13:d4:ee:23:25:e1:5c:3e:85:d0:2b:
b3:a4:c2:17:c8:3d:5e:76:78:e0:e9:cd:39:4a:62:
04:3a:89:dd:d9:f1:8c:fd:f3:42:42:72:c8:24:71:
d0:27:3e:af:c1:f9:89:70:25:7a:3f:4a:8c:7a:e9:
64:63:dc:35:39:ba:80:75:4b:2e:f1:49:f6:df:37:
14:b9:f8:af:29:23:3e:68:c7:c1:6b:da:e7:e9:00:
1a:d8:97:74:44:b2:00:0f:5d:0e:5c:64:3a:cb:6f:
1a:b0:d3:e2:1d:44:45:90:ec:c1:21:df:ee:4c:f1:
a5:24:2e:42:b5:d1:6c:83:a9:a2:6e:1a:3a:c6:c9:
c5:bb:b5:5b:f4:a9:b7:51:be:76:c3:13:8a:67:2a:
fd:0c:af:72:ef:1a:ea:0c:43:27:b8:e9:4b:7b:a2:
28:bb:f8:9c:21:54:83:4f:ea:7f:b4:f0:64:7a:f9:
c3:1d:ed:62:43:62:37:3f:9c:74:70:8e:35:48:4e:
89:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:EC:A8:1B:3A:08:42:52:FA:0B:E6:6C:B3:19:26:89:C8:63:92:25
X509v3 Authority Key Identifier:
keyid:23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/1CF5821009E311EAA865876AF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
137.63.130.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:66:23:88:ad:1a:fe:ea:d5:48:f5:ea:60:b5:ae:47:2a:17:
4e:a2:f0:c1:15:2d:40:66:a2:9b:ac:5f:a8:8f:d0:0c:b4:1d:
dd:ed:98:44:36:cb:fd:2d:c1:26:ea:8c:6e:a1:4e:eb:7f:3d:
a0:2b:7f:67:b5:49:34:29:b8:a7:66:be:d5:d2:5a:03:9b:d3:
18:15:02:54:9c:8c:b1:14:c4:62:53:58:d1:de:ce:04:db:93:
66:0a:70:67:0b:11:d7:87:22:43:fd:ed:54:3b:17:9d:b5:69:
ea:02:f9:79:c6:28:42:19:1d:93:d8:3b:45:00:1d:d9:65:99:
ba:82:71:a1:66:be:bd:cd:d4:11:05:22:24:b3:46:9e:9e:cf:
d8:3f:0b:25:5c:63:14:3e:1b:88:ca:cf:28:62:e4:7e:4d:f6:
ae:72:db:53:4f:d4:07:44:c0:15:f6:42:51:56:5a:a6:5b:77:
1a:34:1a:48:43:be:df:d4:4b:52:8f:3f:24:dc:4e:40:d4:8c:
e5:52:a0:c2:98:0a:5e:98:aa:3b:c0:5c:6e:2a:4e:91:b5:50:
af:73:d5:5d:75:3d:5e:39:e9:b7:3b:66:a2:3f:d5:68:f7:4d:
f4:e6:b8:5c:a3:79:9a:08:2e:90:5d:7a:83:0b:63:59:49:7b:
cd:b2:7d:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 02:39:05 2024 by rpki-client on console-ams.rpki-client.org